Merge pull request #29 from ClickDevTech/merge/ssh-key-download

feat: add SSH private key download action for nodes

Author: ClickDevTech

public/css/style.css

@@ -1760,6 +1760,11 @@ html {
     cursor: not-allowed;
 }
 
+.action-btn.is-disabled {
+    opacity: 0.5;
+    cursor: not-allowed;
+}
+
 .action-btn .action-icon {
     font-size: 16px;
 }
@@ -2361,4 +2366,4 @@ html {
     .nav-menu li, .topbar, .page-header, .quick-action {
         animation: none;
     }
-}
+}

src/locales/en.json

@@ -159,6 +159,8 @@
     "sshKeyGenerating": "Generating and installing key...",
     "sshKeyInstalled": "SSH key generated and installed!",
     "sshKeyError": "Key generation error",
+    "downloadSshKey": "Download SSH Key",
+    "downloadSshKeyMissing": "SSH private key is not configured for this node",
     "maxOnlineUsers": "Online Users Limit",
     "maxOnlineHint": "0 = unlimited. If exceeded, node is hidden from subscription (if enabled).",
     "rankingCoefficient": "Priority (ranking)",
@@ -676,4 +678,4 @@
     "test": "Test",
     "urlRequired": "Enter a URL first"
   }
-}
+}

src/locales/ru.json

@@ -159,6 +159,8 @@
     "sshKeyGenerating": "Генерация и установка ключа...",
     "sshKeyInstalled": "SSH ключ сгенерирован и установлен!",
     "sshKeyError": "Ошибка генерации ключа",
+    "downloadSshKey": "Скачать SSH ключ",
+    "downloadSshKeyMissing": "Для этой ноды не настроен SSH приватный ключ",
     "maxOnlineUsers": "Лимит онлайн пользователей",
     "maxOnlineHint": "0 = без лимита. При превышении нода скрывается из подписки (если включено).",
     "rankingCoefficient": "Приоритет (ranking)",
@@ -676,4 +678,4 @@
     "test": "Тест",
     "urlRequired": "Сначала введите URL"
   }
-}
+}

src/routes/panel.js

@@ -65,6 +65,19 @@ function decryptSshPrivateKey(key) {
     return key;
 }
 
+function buildSshKeyFilename(node) {
+    const safe = (value, fallback) => {
+        const normalized = String(value || '')
+            .trim()
+            .replace(/[^a-zA-Z0-9._-]+/g, '-')
+            .replace(/-+/g, '-')
+            .replace(/^-|-$/g, '');
+        return normalized || fallback;
+    };
+
+    return `${safe(node.name, 'node')}-${safe(node.ip, 'unknown')}.key`;
+}
+
 /**
  * Open a direct SSH connection to a node using its stored credentials.
  * @returns {Promise<Client>} connected ssh2 Client
@@ -741,6 +754,37 @@ router.post('/nodes/:id/generate-ssh-key', requireAuth, generateSshKeyLimiter, a
     }
 });
 
+// GET /panel/nodes/:id/download-ssh-key - Download stored SSH private key
+router.get('/nodes/:id/download-ssh-key', requireAuth, async (req, res) => {
+    try {
+        const node = await HyNode.findById(req.params.id).select('name ip ssh.privateKey');
+
+        if (!node) {
+            return res.status(404).type('text/plain; charset=utf-8').send('Node not found');
+        }
+
+        if (!node.ssh?.privateKey) {
+            return res.status(404).type('text/plain; charset=utf-8').send('SSH private key not configured');
+        }
+
+        const privateKey = decryptSshPrivateKey(node.ssh.privateKey);
+        const filename = buildSshKeyFilename(node);
+
+        logger.info(`[Panel] SSH private key downloaded for node ${node.name}`);
+
+        res.set({
+            'Content-Type': 'application/x-pem-file; charset=utf-8',
+            'Content-Disposition': `attachment; filename="${filename}"`,
+            'Cache-Control': 'no-store',
+            'X-Content-Type-Options': 'nosniff',
+        });
+        return res.send(privateKey);
+    } catch (error) {
+        logger.error(`[Panel] SSH key download error: ${error.message}`);
+        return res.status(500).type('text/plain; charset=utf-8').send('Failed to download SSH private key');
+    }
+});
+
 // GET /panel/nodes/:id/stats - Получение системной статистики ноды
 router.get('/nodes/:id/stats', requireAuth, async (req, res) => {
     try {
@@ -2252,4 +2296,4 @@ router.post('/settings/test-webhook', requireAuth, async (req, res) => {
     }
 });
 
-module.exports = router;
+module.exports = router;

views/node-form.ejs

@@ -517,6 +517,17 @@
                 <span class="badge" style="font-size:10px;background:var(--accent);color:#fff;border-radius:10px;padding:1px 6px;margin-left:4px;"><%= node.outbounds.length %></span>
                 <% } %>
             </a>
+            <% if (node.ssh?.privateKey) { %>
+            <a href="/panel/nodes/<%= node._id %>/download-ssh-key" class="action-btn" style="text-decoration:none;text-align:center;">
+                <span class="action-icon"><i class="ti ti-download"></i></span>
+                <span><%= t('nodes.downloadSshKey') %></span>
+            </a>
+            <% } else { %>
+            <span class="action-btn is-disabled" style="text-decoration:none;text-align:center;" title="<%= t('nodes.downloadSshKeyMissing') %>" aria-disabled="true">
+                <span class="action-icon"><i class="ti ti-download"></i></span>
+                <span><%= t('nodes.downloadSshKey') %></span>
+            </span>
+            <% } %>
             <button class="action-btn" onclick="openTerminal()">
                 <span class="action-icon"><i class="ti ti-terminal-2"></i></span>
                 <span><%= t('nodes.terminal') %></span>